On November 20, 2018 Yoast released a security update to fix a vulnerability. This update was not announced on the Yoast blog. The vulnerability only affects users who have the SEO Manager role enabled. It does not affect all users of Yoast SEO.